Qualifications: Minimum 5 years+ experience leading a Cyber Security Assurance function or similar such as Cyber Security Integration function, Cyber Security Engineering function with some experience in assurance testing techniques and methodologies. Bachelor's Degree in Cybersecurity, Computer Science, Information Systems, related field or equivalent training … and/or experience. Professional InformationSecurity certification by a recognised professional body such as Certified in InformationSecurityManagement (CISM), Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), Global Information Assurance Certification (GIAC), or CompTIA Advanced Security Practitioner … CASP+). Track record leading a security team or function where you have had to collaborate across partners with differing levels of technical security competency. Advanced knowledge and an understanding of operational excellence in Cloud Security Posture Management and Vulnerability Management programs. Understanding risk, resource more »
Press Tab to Move to Skip to Content Link This Senior Cyber Security (GRC) Analyst will report to the Cyber Security Governance, Risk & Compliance Manager and will work within Information Systems based in either our Crawley or London office. You will be a permanent employee. You will … discount on hundreds of retailers products. Discounted access to sports and social clubs Employee Assistance Programme. JOB PURPOSE: You will will support the Cyber Security GRC Manager in developing IT governance, risk management, and compliance strategies across UK Power Networks information systems, applications and users to safeguard … the GRC manager to represent UKPN in energy sector industry forums and regulatory working groups, working collaboratively with Ofgem and the Department for Energy Security and Net Zero Communication – collaborate with all teams and partners in UK Power Networks. Good verbal, written, and presentational skills to articulate risks and more »
seeking a Senior Cyber GRC Analyst to join their team based in their Crawley office. This is a permanent opportunity to support the Cyber Security Governance, Risk & Compliance Manager in developing IT governance, risk management, and compliance strategies to safeguard essential business services and operations from cyber threats. … Key Responsibilities: Conduct cyber security risk assessments following the company's risk assessment framework and methodology. Produce managementinformation related to the risk and control environment. Operate and maintain the informationsecuritymanagement system in compliance with ISO 27001/27002. Develop GRC policies … standards, and procedures to monitor informationsecurity controls. Ensure a fit for purpose IT control environment and support a roadmap for IT controls improvements. Design, implement, and run processes to monitor IT compliance to legal and regulatory requirements. Manage IT resilience and business continuity plans, including conducting test more »
to address identified weaknesses and vulnerabilities. Set up and enhance a comprehensive red and purple team penetration testing program, aligning it with major threat information and industry cybersecurity intelligence. Establish and maintain a vulnerability management process to identify, assess, prioritise, and track remediation of security vulnerabilities and … disaster recovery and business continuity strategies and plans are in place, with regular testing to verify their effectiveness. Key Skills and Qualifications Leadership and Management: Experience: in a leadership role within a Cybersecurity Assurance function or similar, such as Cybersecurity Integration or Engineering, with a focus on assurance testing … techniques and methodologies. Team Management: Proven track record in leading a security team or function, with an emphasis on collaboration across partners with varying levels of technical security competency. Educational Background: Professional InformationSecurity certification by a recognised professional body such as Certified in Informationmore »